Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: BLADE: Can it stop drive-by malware?


13 Oct 2010   #1

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1 Pro
 
 
BLADE: Can it stop drive-by malware?

Read more on this development here

BLADE: Can it stop drive-by malware? | IT Security | TechRepublic.com

Quote:
BLADE (BLock All Drive-by download Exploits), the brainchild of researchers from College of Computing at Georgia Institute of Technology and SRI International, is positioned to help stem the tide of drive-by malware. A big deal according to Dasient.com, the company is tracking over 200 thousand different web-based malware threats.
Quote:
To spot unsolicited download attempts, BLADE places the following processes in kernel space,
  • User-interaction tracking: BLADE uses a screen parser, hardware-event tracer, and a supervisor to track the userís physical interactions with the web browser, specifically when download authorization is asked for.
  • Consent correlation: This process is required by BLADE to distinguish between transparent downloads and those requiring user permission.
  • Disk I/O redirection: When BLADE locates un-authorized downloads, it redirects the code to a secure zone. The data is also prevented from loading into memory as an executable.
Quote:
According to the research paper, almost 19,000 trials have taken place, with zero false positives and zero false negatives. Meaning, BLADE prevented in-the-wild drive-by malware from installing in every case.
Quote:
I did point out that BLADE will not solve every problem, but it has promise to be a good tool in our security arsenal. If you are interested, check back at the BLADE-Defender.org web site, as BLADE V1.0 (a free research prototype) will be available soon.


My System SpecsSystem Spec
.

13 Oct 2010   #2

W7-Enterprise + WS-2008 (Converted to Workstation)
 
 

hi !

i already know about BLADE, it looks really interesting.

but thanks for posting, others might find the info useful.
My System SpecsSystem Spec
14 Oct 2010   #3

 
 

Apparently you can stop all exe downloads in IE and FF with a simple reg setting?
Wilders Security Forums - View Single Post - cleaned pc using an antivirus
My System SpecsSystem Spec
.


Reply

 BLADE: Can it stop drive-by malware?




Thread Tools



Similar help and support threads for2: BLADE: Can it stop drive-by malware?
Thread Forum
Solved Got BSOD Razer Blade 1st Gen BSOD Help and Support
Share Only: About Razer Blade promo Gaming
Drive-by malware blocked by new BLADE software Security News
Ninja Blade Stopped Working Gaming
Ninja Blade Gaming
BLADE: Hacking Away at Drive-By Downloads Security News

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 05:37 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33